Difference between revisions of "The underground economy of spam: a botmaster's perspective of coordinating large-scale spam campaigns"

From Botnets.fr
Jump to navigation Jump to search
 
Line 3: Line 3:
|Botnet=Cutwail
|Botnet=Cutwail
|Year=2011
|Year=2011
|Date=2011
|Date=2011-03-30
|Editor=University of California, Santa Barbara & Ruhr-University Bochum
|Editor=LEET'11 Proceedings of the 4th USENIX conference on Large-scale exploits and emergent threats
|Link=http://iseclab.org/papers/cutwail-LEET11.pdf
|Link=http://iseclab.org/papers/cutwail-LEET11.pdf
|Author=Brett Stone-Gross, Thorsten Holz, Gianluca Stringhini, Giovanni Vigna
|Author=Brett Stone-Gross, Thorsten Holz, Gianluca Stringhini, Giovanni Vigna

Latest revision as of 20:25, 5 August 2015

(Publication) Google search: [1]

The underground economy of spam: a botmaster's perspective of coordinating large-scale spam campaigns
Cutwail-LEET11 page4-5.png
Botnet Cutwail
Malware
Botnet/malware group
Exploit kits
Services
Feature
Distribution vector
Target
Origin
Campaign
Operation/Working group
Vulnerability
CCProtocol
Date 2011 / 2011-03-30
Editor/Conference LEET'11 Proceedings of the 4th USENIX conference on Large-scale exploits and emergent threats
Link http://iseclab.org/papers/cutwail-LEET11.pdf (Archive copy)
Author Brett Stone-Gross, Thorsten Holz, Gianluca Stringhini, Giovanni Vigna
Type Scientific paper

Abstract

In this paper, we present a comprehensive analysis of a

large-scale botnet from the botmaster’s perspective, that highlights the intricacies involved in orchestrating spam campaigns such as the quality of email address lists, the effectiveness of IP-based blacklisting, and the reliability of bots. This is made possible by having access to a number of command-and-control servers used by the Pushdo/ Cutwail botnet. In addition, we study Spamdot.biz, a private forum used by some of the most notorious spam gangs, to provide novel insights into the underground economy of large-scale spam operations.

Bibtex

 @article{Lua error: Cannot create process: proc_open(/dev/null): failed to open stream: Operation not permitted2011BFR798,
   editor = {LEET'11 Proceedings of the 4th USENIX conference on Large-scale exploits and emergent threats},
   author = {Brett Stone-Gross, Thorsten Holz, Gianluca Stringhini, Giovanni Vigna},
   title = {The underground economy of spam: a botmaster's perspective of coordinating large-scale spam campaigns},
   date = {30},
   month = Mar,
   year = {2011},
   howpublished = {\url{http://iseclab.org/papers/cutwail-LEET11.pdf}},
 }